Toni Beck is an IT-Professional with a track record of driving innovation in the field of Cloud Infrastructure. For 15 years Toni has worked in the industry, having held the position of a systems Engineer at Cisco Germany and gaining additional expertise as a Cloud Solution Architect at Microsoft. Currently a Senior Engineer at Wiz, Toni possesses a deep understanding of network security and cloud environments, enabling him to be at the forefront of revolutionizing cybersecurity practices.  

Enjoy our interview with Toni Beck where he shares his thoughts on which significant cybersecurity trend will most likely impact businesses over the next year, he is keen to share his thoughts with you. 

How is AI transforming cybersecurity, and what potential risks and opportunities does it bring?  

Wiz research shows that both managed and self-hosted AI services and tools are on the rise among cloud customers, as businesses across industries use AI to enhance efficiency, automate processes, enable new product features and gain a competitive edge. But in some ways, this rapid uptake of AI technology mirrors the early stages of cloud computing — when many organizations embraced new technology without creating proper guardrails for its use. Wiz recommends improving visibility into AI service usage and fostering a culture of security ownership across development, operations, and security teams. This practice is often associated with the Shift Left concept.

In your view, what is the most significant cybersecurity trend that will impact businesses in the next year? 

Consolidation of security tools and cloud detection and response are the most significant trends in cybersecurity this year.  
Tool sprawl, silos, and visibility gaps have spurred organizations to actively push to consolidate vendors. Consolidation of security tools drives simplicity in cloud environments. Cloud detection and response poses a challenge for security teams due to the complexity of cloud environments. Traditional detection tools were created for on-prem use and adopt a workload-only focus that produces siloed, contextless alerts.  
Wiz has adapted to this market need by offering a consolidated security platform that meets organizations’ security needs from CNAPP to CDR.

What creative solutions do you suggest ion order to address the cyber skills and talent shortage in the industry? 

Companies can maximize the impact of even a small security team by democratizing security. across the organization and embracing a new operating model. The new cloud operating model democratises security by incorporating it seamlessly into everyone’s roles. This enables security teams with unconditional visibility and risk assessment across their ever-changing cloud environment. 

How should companies approach identity and access management differently in the cloud compared to on-premises solutions?

In the cloud, companies should approach Identity and Access Management (IAM) by incorporating robust security measures at every step of the cloud migration process, rather than treating it as an afterthought. This includes conducting comprehensive assessments, prioritizing cloud vulnerabilities, micro-segmenting the new cloud environment, encrypting all data, implementing zero trust, customising compliance frameworks, and avoiding security-tool sprawl. Unlike on-prem solutions, cloud environments may involve multiple cloud service providers (CSPs), and therefore the roles and responsibilities for security should be clearly defined. Companies should also secure and carefully monitor the use of access tokens and leverage user credentials as a proxy for a service account in local development. Ultimately, IAM in the cloud should focus on minimising risks associated with data compromise, IAM lapses, and compliance failures.